Re: How to configure iptables to block a land attack?

[Ben Clewett <B.Clewett@roadrunner.uk.com>]

Asking for a 'standard iptables configuration for all the common 
attacks' is asking for a lot!!!

There are many way of setting up a firewall, and you have to take into 
account how it will work.  Including DNS, Email, NAT, NAPT, Routing 
protocols, ICMP options, DNZ's etc...

Also it depends what you have compiled into your kernel for what options 
area available to you.  A 'standard' set may fail because of this and 
leave you unwittingly vunerable!  Compiling everything there is into 
your kernel is not the correct answer here.

Even worse, there are considerations of load, logging, QoS...

Maybe you want a VPN as well, or backup routs when primary failes...

For instance my 'standard' set, which has taken me six months to 
produce, has nearly a 1000 rules, thirty or so flags, very complex 
logging, QoS, VPN support, using MySQL to post-store and analyse the logs...

I started by reading 'Linux Firewalls' (second edition) from Ziegler, 
New Riders.  This has a selection of common iptables setups you can copy 
and edit the way you want...

Alternativelly, use something like SuSE or Redhat which has it's own 
'standard set' built in. :)

Good luck...

Ben

Sadanapalli, Pradeep Kumar (MED, TCS) wrote:
> Hi Friends,
> Can anyone tell me how should I configure my IPTABLES Firewall to block
> a LAND ATTACK?
> I am new to firewalling..I am running RedHat Linux 8.0 and iptables.
> 
> Can anyone send me a standard iptables configuration for all the common
> attacks?
> I would like to know what are all the common atacks and explaination
> about them.
> Can you direct me to some good link where I can find information on this
> topic?
> 
> Thanks and Regards,
> Pradeep
> 
> 
> 
> -----Original Message-----
> From: terry white [mailto:twhite@aniota.com]
> Sent: Friday, March 14, 2003 2:18 AM
> To: linux-admin
> Subject: RE: how to minimize/maximize/restore an open window in linux
> ...
> 
> 
> on "3-13-2003" "Sadanapalli, Pradeep Kumar (MED, TCS)" writ:
> 
> : I am using RedHat linux 8.0 . I am running KDE .
> 
> ... that is the install i'm running on one of my machines.
> 
>     i just checked, and when a window is open, 'left' click on the '-'
> at
> the "top right" of that window, and it disappears into a 'pane' at the
> bottom of the desktop.  'left' click that, and it reappears ...
> 
>